[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[VulnWatch] BakBone NetVault 6.x/7.x multiples vulnerabilities + exploit

To: "Full-Disclosure" <Full-Disclosure@xxxxxxxxxxxxxxxxx>, <vulnwatch@xxxxxxxxxxxxx>
Subject: [VulnWatch] BakBone NetVault 6.x/7.x multiples vulnerabilities + exploit
From: "class101@xxxxxxxxxxxxx" <class101@xxxxxxxxxxxxx>
Date: Wed, 13 Apr 2005 15:26:00 +0200

As a recall, there is one month, the Hat-Squad found 2 security holes
affecting BakBone NetVault all versions.
And as far as I know (sorry if I missed the hotfix), there is still no patch
available .....
We will re-publish this warning as long as (each month) there is no fix.
Some temp. countermeasures are available in both *.pdf

BakBone NetVault 6.x/7.x Remote Heap Buffer Overflow advisory

class101.org/netv-remhbof.pdf

BakBone NetVault 6.x/7.x Remote Heap Buffer Overflow exploit

class101.org/36/55/op.php

BakBone NetVault 6.x/7.x Local Stack Buffer Overflow advisory

class101.org/netv-locsbof.pdf

BakBone NetVault 6.x/7.x Local Stack Buffer Overflow exploit

class101.org/36/55/op.php


-------------------------------------------------------------
class101
Jr. Researcher
Hat-Squad.com
-------------------------------------------------------------

Prev by Date: [VulnWatch] Multiple medium risk flaws fixed in new version of PHP (late advisory)
Next by Date: [VulnWatch] Windows kernel overflow fixed
Previous by thread: [VulnWatch] Multiple medium risk flaws fixed in new version of PHP (late advisory)
Next by thread: [VulnWatch] Windows kernel overflow fixed
Index(es):
- Date
- Thread